Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability was discovered in Seafile Community Edition prior to version 13.0.12. When Seafile is configured with the Golang file server, an attacker can upload a crafted SVG file containing malicious JavaScript and share it using a public link. Opening the link triggers script execution in the victim's browser. This issue has been fixed in Seafile Community Edition 13.0.12.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Seafile Community Edition 安全漏洞
Vulnerability Description
Seafile Community Edition是中国海文互知(Seafile)公司的一个文档协作平台。 Seafile Community Edition 13.0.12之前版本存在安全漏洞,该漏洞源于存储型跨站脚本攻击,可能导致恶意JavaScript执行。
CVSS Information
N/A
Vulnerability Type
N/A